11 matches found
curl: Negotiate not treated as connection-oriented
It was discovered that libcurl could incorrectly reuse Negotiate authenticated HTTP connections for subsequent requests. If an application using libcurl established a Negotiate authenticated HTTP connection to a server and sent subsequent requests with different credentials, the connection could ...
CVE-2015-0730
The SMB module in Cisco Wide Area Application Services WAAS 6.01 allows remote attackers to cause a denial of service module reload via an invalid field in a Negotiate Protocol request, aka Bug ID CSCuo75645...
Server side request forgery (ssrf)
The SMB module in Cisco Wide Area Application Services WAAS 6.01 allows remote attackers to cause a denial of service module reload via an invalid field in a Negotiate Protocol request, aka Bug ID CSCuo75645...
CVE-2010-1635
The chainreply function in process.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to cause a denial of service NULL pointer dereference and process crash via a Negotiate Protocol request with a certain 0x0003 field value followed by a Session Setup AndX request wit...
Null pointer dereference
The chainreply function in process.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to cause a denial of service NULL pointer dereference and process crash via a Negotiate Protocol request with a certain 0x0003 field value followed by a Session Setup AndX request wit...
CVE-2010-1635
The chainreply function in process.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to cause a denial of service NULL pointer dereference and process crash via a Negotiate Protocol request with a certain 0x0003 field value followed by a Session Setup AndX request wit...
Microsoft Windows - SMB2 Negotiate Protocol '0x72' Response Denial of Service
!/usr/bin/python === EDIT – this exploit appears to be exactly the same one of one which was already found and fixed notified by Laurent Gaffié, i did not know this but his blog post can be found here: http://g-laurent.blogspot.com/2009/11/windows-7-server-2008r2-remote-kernel.html import...
Microsoft Windows SMBv2协商远程代码执行漏洞(MS09-050)
Bugraq ID: 36299 CVE ID:CVE-2009-3103 Microsoft windows是一款流行的操作系统。 Microsoft windows SMB2是新版windows捆绑的SMB协议实现,SRV2.SYS驱动不正确处理发送给NEGOTIATE PROTOCOL REQUEST功能的畸形SMB头字段数据,NEGOTIATE PROTOCOL REQUEST是客户端发送给SMB服务器的第一个SMB查询,用于识别SMB语言并用于之后的通信。 远程攻击者可以构建Process Id...
Microsoft Windows (including Windows 7) SMB2 array index overflow
Crash on SMB2 protocol NEGOTIATE PROTOCOL REQUEST SMB request parsing...
Out-of-bounds
Array index error in the SMBv2 protocol implementation in srv2.sys in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold and SP2, and Windows 7 RC allows remote attackers to execute arbitrary code or cause a denial of service system crash via an & ampersand character in a Proces...
PT-2009-1117
Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to a fixed version Description The issue is related to an array index error in the SMBv2 protocol implementation, allowing remote attackers to execute arbitrary code or cause a denial of service via a specially...